Overview

overview

10

Static

static

10

ada3ab0dfa...18.exe

windows7-x64

10

ada3ab0dfa...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    ada3ab0dfa383d2bfa6025b1fa167c1b_JaffaCakes118

  • Size

    2.6MB

  • MD5

    ada3ab0dfa383d2bfa6025b1fa167c1b

  • SHA1

    db57f99fd559eb6e12d106c844c433dc29701043

  • SHA256

    8bf759b842185c657c9fafb7b225cba8c3b920fe6225fc40ef9ff9e8ff8a8bfa

  • SHA512

    98309b1c06b3a9d26889d1be46005abd69aee53fcd5f3a3c9056f1102b48a0aa93689bd9f4213d6d34abda89d9509644879e0bf8c5bf271852f47ad335971345

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlh:86SIROiFJiwp0xlrlh

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ada3ab0dfa383d2bfa6025b1fa167c1b_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections